1KUBERNETES(1)(kubernetes) KUBERNETES(1)(kubernetes)
2
6 kube-controller-manager - Enforces kubernetes services.
7
11 kube-controller-manager [OPTIONS]
12
16 The Kubernetes controller manager is a daemon that embeds the core con‐
17 trol loops shipped with Kubernetes. In applications of robotics and au‐
18 tomation, a control loop is a non-terminating loop that regulates the
19 state of the system. In Kubernetes, a controller is a control loop that
20 watches the shared state of the cluster through the apiserver and makes
21 changes attempting to move the current state towards the desired state.
22 Examples of controllers that ship with Kubernetes today are the repli‐
23 cation controller, endpoints controller, namespace controller, and ser‐
24 viceaccounts controller.
25 kube-controller-manager [flags]
28
32 **--address ip The
33 IP address on which to serve the insecure --port (set to 0.0.0.0 for
34 all IPv4 interfaces and ** : for all IPv6 interfaces). (default
35 0.0.0.0) (DEPRECATED: see --bind-address instead.)
36 --allocate-node-cidrs Should CIDRs for Pods be allocated and set on the cloud provider.
39 --alsologtostderr log to standard error as well as files
40 --attach-detach-reconcile-sync-period duration The reconciler sync wait time between volume attach detach. This duration must be larger than one second, and increasing this value from the default may allow for volumes to be mismatched with pods. (default 1m0s)
41 --authentication-kubeconfig string kubeconfig file pointing at the 'core' kubernetes server with enough rights to create tokenaccessreviews.authentication.k8s.io. This is optional. If empty, all token requests are considered to be anonymous and no client CA is looked up in the cluster.
42 --authentication-skip-lookup If false, the authentication-kubeconfig will be used to lookup missing authentication configuration from the cluster.
43 --authentication-token-webhook-cache-ttl duration The duration to cache responses from the webhook token authenticator. (default 10s)
44 --authentication-tolerate-lookup-failure If true, failures to look up missing authentication configuration from the cluster are not considered fatal. Note that this can result in authentication that treats all requests as anonymous.
45 --authorization-always-allow-paths strings A list of HTTP paths to skip during authorization, i.e. these are authorized without contacting the 'core' kubernetes server. (default [/healthz])
46 --authorization-kubeconfig string kubeconfig file pointing at the 'core' kubernetes server with enough rights to create subjectaccessreviews.authorization.k8s.io. This is optional. If empty, all requests not skipped by authorization are forbidden.
47 --authorization-webhook-cache-authorized-ttl duration The duration to cache 'authorized' responses from the webhook authorizer. (default 10s)
48 --authorization-webhook-cache-unauthorized-ttl duration The duration to cache 'unauthorized' responses from the webhook authorizer. (default 10s)
49 --azure-container-registry-config string Path to the file containing Azure container registry configuration information.
50 **--bind-address ip The
54 IP address on which to listen for the --secure-port port. The associ‐
55 ated interface(s) must be reachable by the rest of the cluster, and by
56 CLI/web clients. If blank, all interfaces will be used (0.0.0.0 for all
57 IPv4 interfaces and ** : for all IPv6 interfaces). (default
58 0.0.0.0)
59 --cert-dir string The directory where the TLS certs are located. If --tls-cert-file and --tls-private-key-file are provided, this flag will be ignored.
62 --cidr-allocator-type string Type of CIDR allocator to use (default "RangeAllocator")
63 --client-ca-file string If set, any request presenting a client certificate signed by one of the authorities in the client-ca-file is authenticated with an identity corresponding to the CommonName of the client certificate.
64 --cloud-config string The path to the cloud provider configuration file. Empty string for no configuration file.
65 --cloud-provider string The provider for cloud services. Empty string for no provider.
66 --cluster-cidr string CIDR Range for Pods in cluster. Requires --allocate-node-cidrs to be true
67 --cluster-name string The instance prefix for the cluster. (default "kubernetes")
68 --cluster-signing-cert-file string Filename containing a PEM-encoded X509 CA certificate used to issue cluster-scoped certificates (default "/etc/kubernetes/ca/ca.pem")
69 --cluster-signing-key-file string Filename containing a PEM-encoded RSA or ECDSA private key used to sign cluster-scoped certificates (default "/etc/kubernetes/ca/ca.key")
70 --concurrent-deployment-syncs int32 The number of deployment objects that are allowed to sync concurrently. Larger number = more responsive deployments, but more CPU (and network) load (default 5)
71 --concurrent-endpoint-syncs int32 The number of endpoint syncing operations that will be done concurrently. Larger number = faster endpoint updating, but more CPU (and network) load (default 5)
72 --concurrent-gc-syncs int32 The number of garbage collector workers that are allowed to sync concurrently. (default 20)
73 --concurrent-namespace-syncs int32 The number of namespace objects that are allowed to sync concurrently. Larger number = more responsive namespace termination, but more CPU (and network) load (default 10)
74 --concurrent-replicaset-syncs int32 The number of replica sets that are allowed to sync concurrently. Larger number = more responsive replica management, but more CPU (and network) load (default 5)
75 --concurrent-resource-quota-syncs int32 The number of resource quotas that are allowed to sync concurrently. Larger number = more responsive quota management, but more CPU (and network) load (default 5)
76 --concurrent-service-syncs int32 The number of services that are allowed to sync concurrently. Larger number = more responsive service management, but more CPU (and network) load (default 1)
77 --concurrent-serviceaccount-token-syncs int32 The number of service account token objects that are allowed to sync concurrently. Larger number = more responsive token generation, but more CPU (and network) load (default 5)
78 --concurrent-ttl-after-finished-syncs int32 The number of TTL-after-finished controller workers that are allowed to sync concurrently. (default 5)
79 --concurrent_rc_syncs int32 The number of replication controllers that are allowed to sync concurrently. Larger number = more responsive replica management, but more CPU (and network) load (default 5)
80 --configure-cloud-routes Should CIDRs allocated by allocate-node-cidrs be configured on the cloud provider. (default true)
81 --contention-profiling Enable lock contention profiling, if profiling is enabled
82 --controller-start-interval duration Interval between starting controller managers.
83 --controllers strings A list of controllers to enable. '*' enables all on-by-default controllers, 'foo' enables the controller named 'foo', '-foo' disables the controller named 'foo'.
84 All controllers: attachdetach, bootstrapsigner, cloud-node-lifecycle, clusterrole-aggregation, cronjob, csrapproving, csrcleaner, csrsigning, daemonset, deployment, disruption, endpoint, garbagecollector, horizontalpodautoscaling, job, namespace, nodeipam, nodelifecycle, persistentvolume-binder, persistentvolume-expander, podgc, pv-protection, pvc-protection, replicaset, replicationcontroller, resourcequota, root-ca-cert-publisher, route, service, serviceaccount, serviceaccount-token, statefulset, tokencleaner, ttl, ttl-after-finished
85 Disabled-by-default controllers: bootstrapsigner, tokencleaner (default [*])
86 --deployment-controller-sync-period duration Period for syncing the deployments. (default 30s)
87 --disable-attach-detach-reconcile-sync Disable volume attach detach reconciler sync. Disabling this may cause volumes to be mismatched with pods. Use wisely.
88 --enable-dynamic-provisioning Enable dynamic provisioning for environments that support it. (default true)
89 --enable-garbage-collector Enables the generic garbage collector. MUST be synced with the corresponding flag of the kube-apiserver. (default true)
90 --enable-hostpath-provisioner Enable HostPath PV provisioning when running without a cloud provider. This allows testing and development of provisioning features. HostPath provisioning is not supported in any way, won't work in a multi-node cluster, and should not be used for anything other than testing or development.
91 --enable-taint-manager WARN‐
95 ING Beta feature. If set to true enables NoExecute Taints and
96 will evict all not-tolerating Pod running on Nodes tainted with this
97 kind of Taints. (default true)
98 --experimental-cluster-signing-duration duration The length of duration signed certificates will be given. (default 8760h0m0s)
101 --external-cloud-volume-plugin string The plugin to use when cloud provider is set to external. Can be empty, should only be set when cloud-provider is external. Currently used to allow node and volume controllers to work for in tree cloud providers.
102 --feature-gates mapStringBool A set
106 of key=value pairs that describe feature gates for alpha/experimental
107 features. Options are
108 APIListChunking=true|false (BETA - default=true)
111 APIResponseCompression=true|false (ALPHA - default=false)
112 AllAlpha=true|false (ALPHA - default=false)
113 AppArmor=true|false (BETA - default=true)
114 AttachVolumeLimit=true|false (BETA - default=true)
115 BalanceAttachedNodeVolumes=true|false (ALPHA - default=false)
116 BlockVolume=true|false (BETA - default=true)
117 BoundServiceAccountTokenVolume=true|false (ALPHA - default=false)
118 CPUManager=true|false (BETA - default=true)
119 CRIContainerLogRotation=true|false (BETA - default=true)
120 CSIBlockVolume=true|false (BETA - default=true)
121 CSIDriverRegistry=true|false (BETA - default=true)
122 CSIInlineVolume=true|false (ALPHA - default=false)
123 CSIMigration=true|false (ALPHA - default=false)
124 CSIMigrationAWS=true|false (ALPHA - default=false)
125 CSIMigrationAzureDisk=true|false (ALPHA - default=false)
126 CSIMigrationAzureFile=true|false (ALPHA - default=false)
127 CSIMigrationGCE=true|false (ALPHA - default=false)
128 CSIMigrationOpenStack=true|false (ALPHA - default=false)
129 CSINodeInfo=true|false (BETA - default=true)
130 CustomCPUCFSQuotaPeriod=true|false (ALPHA - default=false)
131 CustomResourceDefaulting=true|false (ALPHA - default=false)
132 CustomResourcePublishOpenAPI=true|false (BETA - default=true)
133 CustomResourceSubresources=true|false (BETA - default=true)
134 CustomResourceValidation=true|false (BETA - default=true)
135 CustomResourceWebhookConversion=true|false (BETA - default=true)
136 DebugContainers=true|false (ALPHA - default=false)
137 DevicePlugins=true|false (BETA - default=true)
138 DryRun=true|false (BETA - default=true)
139 DynamicAuditing=true|false (ALPHA - default=false)
140 DynamicKubeletConfig=true|false (BETA - default=true)
141 ExpandCSIVolumes=true|false (ALPHA - default=false)
142 ExpandInUsePersistentVolumes=true|false (BETA - default=true)
143 ExpandPersistentVolumes=true|false (BETA - default=true)
144 ExperimentalCriticalPodAnnotation=true|false (ALPHA - default=false)
145 ExperimentalHostUserNamespaceDefaulting=true|false (BETA - default=false)
146 HyperVContainer=true|false (ALPHA - default=false)
147 KubeletPodResources=true|false (BETA - default=true)
148 LocalStorageCapacityIsolation=true|false (BETA - default=true)
149 LocalStorageCapacityIsolationFSQuotaMonitoring=true|false (ALPHA - default=false)
150 MountContainers=true|false (ALPHA - default=false)
151 NodeLease=true|false (BETA - default=true)
152 NonPreemptingPriority=true|false (ALPHA - default=false)
153 PodShareProcessNamespace=true|false (BETA - default=true)
154 ProcMountType=true|false (ALPHA - default=false)
155 QOSReserved=true|false (ALPHA - default=false)
156 RemainingItemCount=true|false (ALPHA - default=false)
157 RequestManagement=true|false (ALPHA - default=false)
158 ResourceLimitsPriorityFunction=true|false (ALPHA - default=false)
159 ResourceQuotaScopeSelectors=true|false (BETA - default=true)
160 RotateKubeletClientCertificate=true|false (BETA - default=true)
161 RotateKubeletServerCertificate=true|false (BETA - default=true)
162 RunAsGroup=true|false (BETA - default=true)
163 RuntimeClass=true|false (BETA - default=true)
164 SCTPSupport=true|false (ALPHA - default=false)
165 ScheduleDaemonSetPods=true|false (BETA - default=true)
166 ServerSideApply=true|false (ALPHA - default=false)
167 ServiceLoadBalancerFinalizer=true|false (ALPHA - default=false)
168 ServiceNodeExclusion=true|false (ALPHA - default=false)
169 StorageVersionHash=true|false (BETA - default=true)
170 StreamingProxyRedirects=true|false (BETA - default=true)
171 SupportNodePidsLimit=true|false (BETA - default=true)
172 SupportPodPidsLimit=true|false (BETA - default=true)
173 Sysctls=true|false (BETA - default=true)
174 TTLAfterFinished=true|false (ALPHA - default=false)
175 TaintBasedEvictions=true|false (BETA - default=true)
176 TaintNodesByCondition=true|false (BETA - default=true)
177 TokenRequest=true|false (BETA - default=true)
178 TokenRequestProjection=true|false (BETA - default=true)
179 ValidateProxyRedirects=true|false (BETA - default=true)
180 VolumePVCDataSource=true|false (ALPHA - default=false)
181 VolumeSnapshotDataSource=true|false (ALPHA - default=false)
182 VolumeSubpathEnvExpansion=true|false (BETA - default=true)
183 WatchBookmark=true|false (ALPHA - default=false)
184 WinDSR=true|false (ALPHA - default=false)
185 WinOverlay=true|false (ALPHA - default=false)
186 WindowsGMSA=true|false (ALPHA - default=false)
187 --flex-volume-plugin-dir string Full path of the directory in which the flex volume plugin should search for additional third party volume plugins. (default "/usr/libexec/kubernetes/kubelet-plugins/volume/exec/")
188 -h, --help
192 help for kube-controller-manager
193 --horizontal-pod-autoscaler-cpu-initialization-period duration
194 The period after pod start when CPU samples might be skipped. (default
195 5m0s)
196 --horizontal-pod-autoscaler-downscale-stabilization duration
197 The period for which autoscaler will look backwards and not scale down
198 below any recommendation it made during that period. (default 5m0s)
199 --horizontal-pod-autoscaler-initial-readiness-delay duration
200 The period after pod start during which readiness changes will be
201 treated as initial readiness. (default 30s)
202 --horizontal-pod-autoscaler-sync-period duration
203 The period for syncing the number of pods in horizontal pod autoscaler.
204 (default 15s)
205 --horizontal-pod-autoscaler-tolerance float
206 The minimum change (from 1.0) in the desired-to-actual metrics ratio
207 for the horizontal pod autoscaler to consider scaling. (default 0.1)
208 --http2-max-streams-per-connection int
209 The limit that the server gives to clients for the maximum number of
210 streams in an HTTP/2 connection. Zero means to use golang's default.
211 --kube-api-burst int32
212 Burst to use while talking with kubernetes apiserver. (default 30)
213 --kube-api-content-type string
214 Content type of requests sent to apiserver. (default "applica‐
215 tion/vnd.kubernetes.protobuf")
216 --kube-api-qps float32
217 QPS to use while talking with kubernetes apiserver. (default 20)
218 --kubeconfig string
219 Path to kubeconfig file with authorization and master location informa‐
220 tion.
221 --large-cluster-size-threshold int32
222 Number of nodes from which NodeController treats the cluster as large
223 for the eviction logic purposes. --secondary-node-eviction-rate is
224 implicitly overridden to 0 for clusters this size or smaller. (default
225 50)
226 --leader-elect
227 Start a leader election client and gain leadership before executing the
228 main loop. Enable this when running replicated components for high
229 availability. (default true)
230 --leader-elect-lease-duration duration
231 The duration that non-leader candidates will wait after observing a
232 leadership renewal until attempting to acquire leadership of a led but
233 unrenewed leader slot. This is effectively the maximum duration that a
234 leader can be stopped before it is replaced by another candidate. This
235 is only applicable if leader election is enabled. (default 15s)
236 --leader-elect-renew-deadline duration
237 The interval between attempts by the acting master to renew a leader‐
238 ship slot before it stops leading. This must be less than or equal to
239 the lease duration. This is only applicable if leader election is
240 enabled. (default 10s)
241 --leader-elect-resource-lock endpoints
242 The type of resource object that is used for locking during leader
243 election. Supported options are endpoints (default) and configmaps.
244 (default "endpoints")
245 --leader-elect-retry-period duration
246 The duration the clients should wait between attempting acquisition and
247 renewal of a leadership. This is only applicable if leader election is
248 enabled. (default 2s) --log-backtrace-at traceLocation
249 when logging hits line file N, emit a stack trace (default :0)
250 --log-dir string If non-empty, write log files in this directory
253 --log-file string If non-empty, use this log file
254 --log-file-max-size uint Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited. (default 1800)
255 --log-flush-frequency duration Maximum number of seconds between log flushes (default 5s)
256 --logtostderr log to standard error instead of files (default true)
257 --master string The address of the Kubernetes API server (overrides any value in kubeconfig).
258 --min-resync-period duration The resync period in reflectors will be random between MinResyncPeriod and 2*MinResyncPeriod. (default 12h0m0s)
259 --namespace-sync-period duration The period for syncing namespace life-cycle updates (default 5m0s)
260 --node-cidr-mask-size int32 Mask size for node cidr in cluster. (default 24)
261 --node-eviction-rate float32 Number of nodes per second on which pods are deleted in case of node failure when a zone is healthy (see --unhealthy-zone-threshold for definition of healthy/unhealthy). Zone refers to entire cluster in non-multizone clusters. (default 0.1)
262 --node-monitor-grace-period duration Amount of time which we allow running Node to be unresponsive before marking it unhealthy. Must be N times more than kubelet's nodeStatusUpdateFrequency, where N means number of retries allowed for kubelet to post node status. (default 40s)
263 --node-monitor-period duration The period for syncing NodeStatus in NodeController. (default 5s)
264 --node-startup-grace-period duration Amount of time which we allow starting Node to be unresponsive before marking it unhealthy. (default 1m0s)
265 --pod-eviction-timeout duration The grace period for deleting pods on failed nodes. (default 5m0s)
266 --port int The
270 port on which to serve unsecured, unauthenticated access. Set to 0 to
271 disable. (default 10252) (DEPRECATED see --secure-port instead.)
272 --profiling Enable
275 profiling via web interface host port/debug/pprof/
276 --pv-recycler-increment-timeout-nfs int32 the increment of time added per Gi to ActiveDeadlineSeconds for an NFS scrubber pod (default 30)
279 --pv-recycler-minimum-timeout-hostpath int32 The minimum ActiveDeadlineSeconds to use for a HostPath Recycler pod. This is for development and testing only and will not work in a multi-node cluster. (default 60)
280 --pv-recycler-minimum-timeout-nfs int32 The minimum ActiveDeadlineSeconds to use for an NFS Recycler pod (default 300)
281 --pv-recycler-pod-template-filepath-hostpath string The file path to a pod definition used as a template for HostPath persistent volume recycling. This is for development and testing only and will not work in a multi-node cluster.
282 --pv-recycler-pod-template-filepath-nfs string The file path to a pod definition used as a template for NFS persistent volume recycling
283 --pv-recycler-timeout-increment-hostpath int32 the increment of time added per Gi to ActiveDeadlineSeconds for a HostPath scrubber pod. This is for development and testing only and will not work in a multi-node cluster. (default 30)
284 --pvclaimbinder-sync-period duration The period for syncing persistent volumes and persistent volume claims (default 15s)
285 --requestheader-allowed-names strings List of client certificate common names to allow to provide usernames in headers specified by --requestheader-username-headers. If empty, any client certificate validated by the authorities in --requestheader-client-ca-file is allowed.
286 --requestheader-client-ca-file string Root
290 certificate bundle to use to verify client certificates on incoming
291 requests before trusting usernames in headers specified by --request‐
292 header-username-headers. WARNING generally do not depend on
293 authorization being already done for incoming requests.
294 --requestheader-extra-headers-prefix strings List of request header prefixes to inspect. X-Remote-Extra- is suggested. (default [x-remote-extra-])
297 --requestheader-group-headers strings List of request headers to inspect for groups. X-Remote-Group is suggested. (default [x-remote-group])
298 --requestheader-username-headers strings List of request headers to inspect for usernames. X-Remote-User is common. (default [x-remote-user])
299 --resource-quota-sync-period duration The period for syncing quota usage status in the system (default 5m0s)
300 --root-ca-file string If set, this root certificate authority will be included in service account's token secret. This must be a valid PEM-encoded CA bundle.
301 --route-reconciliation-period duration The period for reconciling routes created for Nodes by cloud provider. (default 10s)
302 --secondary-node-eviction-rate float32 Number of nodes per second on which pods are deleted in case of node failure when a zone is unhealthy (see --unhealthy-zone-threshold for definition of healthy/unhealthy). Zone refers to entire cluster in non-multizone clusters. This value is implicitly overridden to 0 if the cluster size is smaller than --large-cluster-size-threshold. (default 0.01)
303 --secure-port int The port on which to serve HTTPS with authentication and authorization.If 0, don't serve HTTPS at all. (default 10257)
304 --service-account-private-key-file string Filename containing a PEM-encoded private RSA or ECDSA key used to sign service account tokens.
305 --service-cluster-ip-range string CIDR Range for Services in cluster. Requires --allocate-node-cidrs to be true
306 --skip-headers If true, avoid header prefixes in the log messages
307 --skip-log-headers If true, avoid headers when opening log files
308 --stderrthreshold severity logs at or above this threshold go to stderr (default 2)
309 --terminated-pod-gc-threshold int32 Number of terminated pods that can exist before the terminated pod garbage collector starts deleting terminated pods. If <= 0, the terminated pod garbage collector is disabled. (default 12500)
310 --tls-cert-file string File containing the default x509 Certificate for HTTPS. (CA cert, if any, concatenated after server cert). If HTTPS serving is enabled, and --tls-cert-file and --tls-private-key-file are not provided, a self-signed certificate and key are generated for the public address and saved to the directory specified by --cert-dir.
311 --tls-cipher-suites strings
315 Comma-separated list of cipher suites for the server. If omitted, the
316 default Go cipher suites will be use. Possible values
317 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_ECDSA_WITH_RC4_128_SHA,TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_256_GCM_SHA384,TLS_RSA_WITH_RC4_128_SHA
318 --tls-min-version string Mini‐
321 mum TLS version supported. Possible values VersionTLS10, Ver‐
322 sionTLS11, VersionTLS12, VersionTLS13
323 --tls-private-key-file string File containing the default x509 private key matching --tls-cert-file.
326 --tls-sni-cert-key namedCertKey A pair
330 of x509 certificate and private key file paths, optionally suffixed
331 with a list of domain patterns which are fully qualified domain names,
332 possibly with prefixed wildcard segments. If no domain patterns are
333 provided, the names of the certificate are extracted. Non-wildcard
334 matches trump over wildcard matches, explicit domain patterns trump
335 over extracted names. For multiple key/certificate pairs, use the
336 --tls-sni-cert-key multiple times. Examples "example.crt,exam‐
337 ple.key" or "foo.crt,foo.key:*.foo.com,foo.com". (default [])
338 --unhealthy-zone-threshold float32 Fraction of Nodes in a zone which needs to be not Ready (minimum 3) for zone to be treated as unhealthy. (default 0.55)
341 --use-service-account-credentials If true, use individual service account credentials for each controller.
342 -v, --v Level
346 number for the log level verbosity
347 --version version[=true]
348 Print version information and quit
349 --vmodule moduleSpec
350 comma-separated list of pattern=N settings for file-filtered logging
351
355 /usr/bin/kube-controller-manager --logtostderr=true --v=0 --mas‐
356 ter=127.0.0.1:8080
357Manuals User KUBERNETES(1)(kubernetes)